SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with …

awesome list of browser exploitation tutorials

A proper well structured documentation for getting started with chrome pwning & v8 pwning

一款自动对字节码中的字符串进行加密Android插件工具

this is a kernel module which connects to the apple authentication chip through i2c and expose its io through sysfs

Arduino библиотека для подключения к чипам внутри Lightning

2nd Gen Powerful Scriptable DNS server with SBL/SURBL functionality. LGPL.

An implementation of function patching for iOS, without the use of W|X pages.

Obtain GraphQL API schema even if the introspection is disabled

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

A little bit less hackish way to intercept and modify non-HTTP protocols through Burp & others.

Another Windows Local Privilege Escalation from Service Account to System

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

Minimal FIDO2 library for microcontrollers

Let's sudo by face recognition of Windows Hello on Windows Subsystem for Linux (WSL). It runs on both WSL 1 and WSL 2. This is a PAM module for Linux on WSL.

Decrypts an encrypted Bitwarden data.json file.

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy serv…

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

SharpUp is a C# port of various PowerUp functionality.

Directory Services Internals (DSInternals) PowerShell Module and Framework

BloodyAD is an Active Directory Privilege Escalation Framework

Get back online, activate, and install updates on your legacy Windows PC

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

A reverse engineering tool for decompiling and disassembling the React Native Hermes bytecode

This map lists the essential techniques to bypass anti-virus and EDR

This is a one-time signature verification bypass. For persistent signature verification bypass, check https://github.com/TomKing062/CVE-2022-38691_38692

Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)

Exploits for Android Binder bug CVE-2020-0041